一个使用移动设备和浏览器扩展来加强密码认证的框架

The 10th IEEE International Symposium on Signal Processing and Information Technology Pub Date : 2010-12-15 DOI:10.1109/ISSPIT.2010.5711728

P. Shi, Bo Zhu, A. Youssef

{"title":"一个使用移动设备和浏览器扩展来加强密码认证的框架","authors":"P. Shi, Bo Zhu, A. Youssef","doi":"10.1109/ISSPIT.2010.5711728","DOIUrl":null,"url":null,"abstract":"Shoulder-surfing, phishing and keylogging are widely used by attackers to obtain users' sensitive credentials. In this paper, we propose a framework to strengthen password authentication using mobile devices and browser extensions. This approach provides a relatively high resilience against shoulder-surfing, phishing and keylogging attacks while requires no change on the server side. A prototype implementation of the proposed approach and its security analysis are also provided.","PeriodicalId":308189,"journal":{"name":"The 10th IEEE International Symposium on Signal Processing and Information Technology","volume":"169 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2010-12-15","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":"{\"title\":\"A framework to strengthen password authentication using mobile devices and browser extensions\",\"authors\":\"P. Shi, Bo Zhu, A. Youssef\",\"doi\":\"10.1109/ISSPIT.2010.5711728\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Shoulder-surfing, phishing and keylogging are widely used by attackers to obtain users' sensitive credentials. In this paper, we propose a framework to strengthen password authentication using mobile devices and browser extensions. This approach provides a relatively high resilience against shoulder-surfing, phishing and keylogging attacks while requires no change on the server side. A prototype implementation of the proposed approach and its security analysis are also provided.\",\"PeriodicalId\":308189,\"journal\":{\"name\":\"The 10th IEEE International Symposium on Signal Processing and Information Technology\",\"volume\":\"169 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2010-12-15\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"1\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"The 10th IEEE International Symposium on Signal Processing and Information Technology\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ISSPIT.2010.5711728\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"The 10th IEEE International Symposium on Signal Processing and Information Technology","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ISSPIT.2010.5711728","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 1

摘要

攻击者广泛使用肩冲浪、网络钓鱼和键盘记录来获取用户的敏感凭据。在本文中，我们提出了一个使用移动设备和浏览器扩展来加强密码认证的框架。这种方法提供了相对较高的抗肩冲浪、网络钓鱼和键盘记录攻击的弹性，同时不需要在服务器端进行更改。给出了该方法的原型实现及其安全性分析。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

A framework to strengthen password authentication using mobile devices and browser extensions

Shoulder-surfing, phishing and keylogging are widely used by attackers to obtain users' sensitive credentials. In this paper, we propose a framework to strengthen password authentication using mobile devices and browser extensions. This approach provides a relatively high resilience against shoulder-surfing, phishing and keylogging attacks while requires no change on the server side. A prototype implementation of the proposed approach and its security analysis are also provided.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

The 10th IEEE International Symposium on Signal Processing and Information Technology

自引率

0.00%

发文量